Skip to content

A client that retrieves vulnerability observations from a MISP server and pushes them to a Vulnerability Lookup instance.

License

Notifications You must be signed in to change notification settings

MISP/VulnerabilityLookupSighting

Repository files navigation

Vulnerability-Lookup Sighting

A client that retrieves vulnerability observations from a MISP server and pushes them to a Vulnerability Lookup instance.

Similar to FediVuln which is using the Fediverse as a source of observations.

Installation

pipx is an easy way to install and run Python applications in isolated environments. It's easy to install.

$ pipx install VulnerabilityLookupSighting
$ export VulnerabilityLookupSighting_CONFIG=~/conf.py

The configuration should be defined in a Python file (e.g., ~/.conf.py). You must then set an environment variable (VulnerabilityLookupSighting) with the full path to this file.

Usage

$ VulnerabilityLookupSighting --help
usage: FediVuln-Stream [-h] [--since SINCE]

Allows access to the streaming API.

options:
  -h, --help     show this help message and exit
  --since SINCE  Maximum timestamp of the MISP attribute.

Publishing sightings to Vulnerability Lookup

$ VulnerabilityLookupSighting
Querying MISP...
Query completed successfully.
Pushing sightings to Vulnerability Lookup...

https://github.com/MISP/VulnerabilityLookupSighting

License

Vulnerability-Lookup Sighting is licensed under GNU General Public License version 3

Copyright (c) 2024 Computer Incident Response Center Luxembourg (CIRCL)
Copyright (C) 2024 Cédric Bonhomme - https://github.com/cedricbonhomme